GO-2022-0998

Affected Products

Timeline

• Nov 9, 2023 CVE Published
• May 20, 2024 CVE Updated

References

• https://github.com/sigstore/cosign/security/advisories/GHSA-8gw7-4j42-w388 advisory
• https://github.com/sigstore/cosign/commit/80b79ed8b4d28ccbce3d279fd273606b5cddcc25 patch
• https://github.com/sigstore/cosign/releases/tag/v1.12.0 url